CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-19902

Directory Traversal vulnerability found in Cryptoprof WCMS v.0.3.2 allows a remote attacker to execute arbitrary code via the wex/cssjs.php parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.046

EPSS Ranking 88.6%

CVSS Severity

CVSS v3 Score 9.8

References

https://github.com/vedees/wcms/issues/3
https://github.com/vedees/wcms/issues/3

Products affected by CVE-2020-19902

Wcms » Wcms » Version: 0.3.2

cpe:2.3:a:wcms:wcms:0.3.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-19902

Products

Pricing

Contact Us